Newsmakers

Essential Skills: Using Password Vaults

Editor's note: HP 3000 managers do many jobs, work that often extends outside the MPE realm. In Essential Skills, we cover the non-3000 skillset for these multi-talented MPE experts.

By Steve Hardwick, CISSP

Passwords are always a challenge for security professionals. Why is creating a secure password so difficult? More importantly, how can a user tell if their password has been stolen? Typically, when all the damage has been done and the password has been used by someone else. At this point in time it is too late. One way to resolve this is to have a password vault such as KeepPass or 1Password.

VaultA vault is a good investment of your time. A security breach that might result from having no vault might be difficult to even detect. It might be that the time the breach is discovered may not be the first time the hacked credentials were used. This might be how many times a stolen credit card is used before the owner gets the bill. Second, the hacker could have hacked the password and is just keeping it for later use or sale. One of the preventative measures for this is to require users to periodically change passwords. 

This changing strategy can stem the use of stolen passwords and also prevent the future use of any that have not yet been exploited. From a user's perspective, though, generating multiple passwords every 60-90 days just compounds the passwords nightmare.

As a security professional I have seen several solutions that users concoct to try and get around this issue. One common one is to write them all down and hide the resulting list. It turns out there are not that many good hiding places. Under keyboards, behind pictures, inside speakers, taped to the underside of a drawer or chair, back of a bookcase do not qualify as good locations. Also, many users forget to update the sheet with new passwords. Another approach is to create a text file, e.g. shopping_list.txt, and put everything in there. A quick search of the most frequently used files normally finds those. Plus if the hard drive crashes, and the file is not backed up, new ones have to be set up all over again. 

A variation of the last theme is to use a password vault. This is a method where the password information is stored on a file, but the file is encrypted. In this case only one password is needed, to decrypt the vault, and access is granted to all of the other passwords. The most ubiquitous form of encryption is AES - Advance Encryption Standard. AES256 encryption is adequate for most users.

However, one word of caution. If the password used to encrypt the vault is easy to guess, then the contents are at risk. 

Continue reading "Essential Skills: Using Password Vaults " »


Big, unreported computing in MPE's realm

When members gather from the 3000 community, they don't often surprise each other these days with news. The charm and challenge of the computer's status is its steady, static nature. We've written before about how no news is the usual news for a 40-year-old system.

Pegged gaugesBut at a recent outing with 3000 friends I heard two pieces of information that qualify as news. The source of this story would rather not have his name used, but he told me, "This year we actually sold new software to 3000 sites." Any sort of sale would be notable. This one was in excess of $10,000. "They just told us they needed it," my source reported, "and we didn't need to know anything else." A support contract came along with the sale, of course.

The other news item seemed to prove we don't know everything about the potential of MPE and the attraction of the 3000 system. A company was reaching out for an estimate on making a transition to the Charon emulator. They decided not to go forward when they figured it would require $1 million in Intel-based hardware to match the performance of their HP 3000.

"How's that even possible?" I asked. This is Intel-caliber gear being speficied, and even a pricey 3000 configuration shouldn't cost more than a quarter-million dollars to replace. It didn't add up.

"Well, you know they need multiple cores to replace a 3000 CPU," my source explained. Sure, we know that. "And they had a 16-way HP 3000 they were trying to move out."

Somewhere out there in the world there's an HP 3000, installed by Hewlett-Packard, that supports 16 CPUs. Still running an application suite. The value is attractive enough that it's performing at a level twice as powerful as anything HP would admit to, even privately. 

A 4-way N-Class was as big as HP would ever quote. Four 500-MHz or 750-MHz PA-8700 CPUs, with 2.25 MB on-chip cache per CPU, topped the official lineup.

Unix got higher horsepower out of the same HP servers. An 8-way version of the same N-Class box was supported on HP-UX; HP would admit such a thing was possible in the labs, and not supported in the field. But a 16-way? HP won't admit it exists today, and the customer wouldn't want to talk about it either. Sometimes things go unreported because they're too big to admit. It made me wonder how much business HP might've sustained if they'd allowed MPE to run as fast and as far as HP-UX ran, when both of those environments were hosted on the same iron.


TBT: When Joy of Tech Was Necessary

SuperGroup Fred White


The cover above of the SuperGroup Association magazine from January, 1985 came to mind here on ThrowBack Thursday. Fred White passed away this week, and it's been a delightful trek down the lane of memories to recall his gusto about the art of technology.

The cover above shows some of that gusto which is not easy to describe. SuperGroup understood the MPE and IMAGE technology of the '80s as well or better than any magazine of the day. But that 3000 publication edited by D. David Brown had a sense of humor and whimsy about it no other publication has been able to eclipse. (Even on my best day as HP Chronicle editor I was only cooking up editorial cartoons about PA-RISC that somebody else would illustrate, and there have been those Ken-Do strips from the NewsWire. But nothing as savvy as what was staged above.)

The players in the little romp were, from left, White, Adager's Alfredo Rego, and Robelle's Bob Green. The photo was a teaser into a great technical paper about a perceived need to acknowledge that databases needed "uncomfortable Procrustean designs... [using] methodologies associated wth normalizing and relating."

Procrustean creditsLike the paper that Eugene Volokh wrote in the following year, the technical report put relational databases in their place -- capable of permitting multiple views of data, but with a steep performance price to pay compared to IMAGE/3000. The article was on the vanguard of unmasking the shortcomings of relational databases of that era, as I read it. Also clever and playful, two words not often associated with technical writing. The paper was authored by more than the three in the picture; Allegro's Stan Sieler and Steve Cooper got credits, as did Leslie Keffer de Rego for editing.

Continue reading "TBT: When Joy of Tech Was Necessary" »


Fred White, 1924-2014

FredWhiteCourtesy of his long-time collaborator and partner Alfredo Rego, this picture of Fred White was taken in 2004, when Fred was 80 and several years into retirement. The legendary co-creator of IMAGE and the SPL expert in Adager's Labs, White was a Marine Corps veteran. Rego said while offering this portrait, "I took this photo with my Olympus E-1 on October 26, 2004 (just a bit over 10 years ago!) in Cedar City, Utah, where he and Judy lived for a while. Fred invited Judy and me to lunch, and I snapped this image across the table. I loved everything there: The warm light, the delicious food, the stimulating conversation, the young college students rushing about..."

The creator of the heartbeat of the HP 3000, Fred White, passed away on November 18, 2014 at the age of 90. White died peacefully in the presence of his wife Judy and family members, of natural causes. He had relocated to Arizona after retiring from Adager in the year after Y2K. His work in building the essential database for MPE, alongside Jon Bale, was the keystone of the 3000 experience. Rego took note of a key identifier inside the IMAGE internals, one that signified a database was sound and accurate. The flag was FW, or as Rego said in a short tribute to his partner, "%043127, the octal representation of “FW” — the flag for a normal IMAGE/3000 database (and TurboIMAGE, and IMAGE/SQL)."

White's work for the 3000 community came in two stages. The first was his innovations while working for HP, building a network database which won awards until HP stopped selling IMAGE and included it with the HP 3000. (Bundled software would not be considered for prizes like the Datamation award bestowed on IMAGE in 1976.) IMAGE, integrated at a foolproof level with the MPE intrinsics and filesystem, delivered a ready field for a small army of developers to plant applications and tools. Without White's work, the 3000 would have been just a footnote in HP's attempts to enter the computer business.

The second stage of White's gifts to the community began when HP had infuriated him for the last time. Never a fan of large organizations, he left Hewlett-Packard when it became clear the vendor had no interest in enhancing IMAGE. But before he departed HP, White met with Rego when the latter was visiting HP in an effort to learn more about IMAGE from the vendor, in preparation for a forthcoming database manager he'd create. As the legend is told, White decided he'd try to help Rego just to ensure that the creation to be called Adager could emerge a little easier.

"He hoped we would answer his questions," White said in a post-retirement interview. His partner Jon Bale "said that kind of help would be contrary to HP company policy. I said to him, 'Jon, this guy’s going to get this done whether we help him or not. All we’re doing is helping a fellow human. Whatever it takes, Alfredo’s going to do it anyway.' "

"At that point, Jon said it was up to me, but he couldn’t do it because it wasn’t HP company policy. He wished Alfredo the best of luck and left. So I answered his questions, and even told him things he couldn’t possibly have thought of, such as privileged mode intrinsic calling and negative DBOPEN modes, things peculiar to the software rather than the database. We chatted for an hour and a half or so."

The exchange in 1977 pointed toward the door to the Adager segment of White's career. The years between 1980 and 2001 allowed Fred to make up for his reticence inside corporations by becoming the conscience of accuracy and fairness. Innovations for IMAGE finally arrived in the middle 1990s. But White's most saucy moment of advocacy came in Boston when HP was trying to make IMAGE a separate product once again.

Continue reading "Fred White, 1924-2014" »


Security experts try to rein in POODLE

PoodlelocksSometimes names can be disarming ways of identifying high-risk exploits. That's the case with POODLE, a new SSL-based security threat that comes after the IT community's efforts to contain Heartbleed, and then the Shellshock vulnerability of the bash shell program. HP 3000s are capable of deploying SSL security protocols in Web services. Few do, in the field; most companies assign this kind of service to a Linux server, or sometimes to Windows.

The acronym stands for Padding Oracle on Downgraded Legacy Encryption. This oracle has nothing to do with the database giant. A Wikipedia article reports that such an attack "is performed on the padding of a cryptographic message. The plain text message often has to be padded (expanded) to be compatible with the underlying cryptographic primitive. Leakage of information about the padding may occur mainly during decryption of the ciphertext."

The attack can also be performed on HP's Next Generation Firewall (NGFW), a security appliance that is in place protecting thousands of networks around the world. Other firewalls are at risk. Just this week HP released a security patch to help the NGFW appliances withstand the attack. External firewalls are a typical element in modern web service architectures.

A POODLE attack takes a bite out of SSL protections by fooling a server into falling back to an older SSLv3 protocol. HP reported that its Local Security Manager (LSM) software on the NGFW is at risk. But a software update is available at the HP TippingPoint website, the home of the TippingPoint software that HP acquired when it bought 3Com in 2010. TippingPoint rolled out the first HP NGFW firewalls last year.

Continue reading "Security experts try to rein in POODLE" »


Legacy Management: More than Rehosting

LooksoftwareSpeedware became Freshe Legacy several years ago, and in 2012 the company's business crossed the watershed from Hewlett-Packard sites to those running IBM's AS/400 servers. The latter is now called IBM i, and in one interview Fresche CEO Andy Kulakowski said the company's customers are now 85 percent IBM users.

The world of IBM i is still populated with product releases, vendor support, and the challenges of keeping a legacy line of computing looking current. Last month Fresche purchased the assets, intellectual property and customer base of looksoftware (yes, all lowercase and all one word.) Next week the newest tool in the Fresche belt goes on display in one of the oldest of enterprise venues: a $949 user conference, COMMON.

COMMON has served IBM users since before there was an Interex. The first meetings of the group surrounded the IBM Series 1800, a data acquisition and control system which was similar to the 3000 in that it used a Multi Programming Executive (MPX) operating system. COMMON meetings began in the 1960s, and the 1800 was used in product for more than 50 years. Even though COMMON attendance has dropped and the gatherings have gotten shorter, the group still assembles the experts and the faithful once a year for a classic expo and education event. This year's is in Indianapolis, following the model that Interex used for HP 3000 customers: a moveable feast taking place in cities both great and, well, common. One forgettable year the Interex show was held in Detroit. In the Midwest, however, a great number of manufacturers and distributors have always used business systems like the 3000 and the i.

ModernizationDrill into the looksoftware website and you'll find mention of the HP 3000 in the Modernization Solutions section. Along with methodologies such as cloud enablement, database modernization and automated code conversion, MPE/iX customers can find a relevant line, "Re-hosting (HP e3000)." COMMON attendees could very easily hear about rehosting at the conference. After decades of serving just the AS/400 family, it's now an expo that embraces Unix and Linux computing from IBM, too.

Continue reading "Legacy Management: More than Rehosting" »


Macworlds expire. Apple soars. Not linked.

Screen Shot 2014-10-21 at 3.14.11 AMOne classy way to go out of the conference business: tell your sponsor vendors the next conference won't happen, six months early. Don't take their deposits for show space.

You can file this report under Types of End of Life. The HP 3000 had an alleged end of life. HP announced it about 13 years ago, but that was the vendor's report about its 3000 activities. There can be a demise in classic support structures for a system once it wanes. But those structures, like information and community events, might be wobbly all by themselves. Things do change.

Everything called Macworld has now gone away. There was a print magazine, roaring through the '80s, the '90s, and even until about 10 years ago. Printed publications about computer lines, focused on one vendor, built this industry. IDG owned Macworld, owns PC World, owns Computerworld. Only the last publication still prints news on paper and sends magazines into the mail. Things change. There's this invention called the Internet.

In another post I pointed to the HP publications no longer in print. All of them, except for the Newswire. HP Professional, InterACT, HP Omni. Long ago, SuperGroup, and HP User. Interex Press, HP World. Every one of them exited. The departure for some was the trigger of that HP end of life announcement. Others rolled over when something bigger died: their parent company, or interest in Hewlett-Packard's products. One of the last executive directors of the Interex user group asked a big question: "How do you make a vendor-specific user group relevant in a cross-platform world?" said Chuck Piercey.

HP World 2005


Another way to go out of the show business: tell your partners nothing about the departure, and market as if it's all going fine. This, from a web page less than four weeks before the final, canceled HP World conference -- a page still online on the day before the user group's demise.

IDG's expo division has asked the same stay-relevant question about the 30-year-old Macworld conference. And answered it. The expo is now on hiatus, and unlikely to emerge again. Macworld Expo added a sister expo called iWorld to embrace the rocketing mobile products from Apple. More than one third of Macworld/iWorld exhibitors bought booth spots in a bullpen called the Appalooza. More important, though, was the exodus of tens of thousands of square feet of show space, once purchased by the industry's giants. Adobe. HP. Canon. Microsoft. Little vendors in little booths were not enough to counter big changes in our industry's communication.

Apple reported a record profit yesterday, and its stock is trading at $716 a share (corrected for the 7:1 split of the springtime). Apple announced an end of life of its user show exhibitions four years ago. Macworld Expo never was the same. The vendor got healthier and bigger, so why did the magazine and show founder? Things change. Customers, always the prize for a conference or a magazine, found better ways to learn about owning products. And what to purchase.

Continue reading "Macworlds expire. Apple soars. Not linked." »


Tracking MPE/iX Vulnerability to Shellshock

Security experts have said that the Shellshock bug in the bash shell program is serious. So much so that they're comparing it to the Heartbleed breach of earlier this year. Many are saying Shellshock is even more of a threat.

Screen Shot 2014-10-17 at 8.22.33 PMOnce again, this has some impact on HP 3000s, just like Heartbleed did. But you'll need to be managing a 3000 that's exposed to the Internet to see some risks to address as part of system administration. Web servers, domain name servers, and other net-ready services provide the opportunity for this malware. There's not a lot of that running in the customer base today, but the software is still sitting on the 3000 systems, programs that could enable it.

Authorities fear a deluge of attacks could emerge. The US government has rated the security flaw 10 out of 10 for severity.

Bash is open source software, and our expert on that subject Brian Edminster is working on a specific report about the vulnerabilities. Hewlett-Packard posted a security bulletin that points to a safer version of the bash shell utility. But that version won't help HP 3000s.

It's not that HP doesn't know about the 3000 any longer. The patching menu above shows that MPE is still in the security lexicon at Hewlett-Packard. But Edminster thinks the only way to make bash safe again on MPE might be to port it a-fresh. "The 3000's bash is version 2.04, but the version that's considered 'current' is 4.x (depending on what target system you're on)," he said. "So if v2.04 is broken, the code-diffs being generated to fix the issues [by HP] in late-model bash software won't be of much (if any) use."

Continue reading "Tracking MPE/iX Vulnerability to Shellshock" »


Signed malware stalks HP's Windows boxes

HP will be revoking a security certificate for its Windows-based systems on Oct. 21, and the vendor isn't sure yet how that will impact system reliability.

StalkingThe bundled software on older HP PC systems has been at risk of being the front-man for malware, according to a report in the Kerbs on Security website. This code-signing is supposed to give computer users and network admins confidence about a program's security and integrity. HP's Global Chief Security Officer Brett Wahlin said the company is revoking a certificate it's been using even before 2010.

HP was recently alerted by Symantec about a curious, four-year-old trojan horse program that appeared to have been signed with one of HP’s private certificates and found on a server outside of HP’s network. Further investigation traced the problem back to a malware infection on an HP developer’s computer. 

HP investigators believe the trojan on the developer’s PC renamed itself to mimic one of the file names the company typically uses in its software testing, and that the malicious file was inadvertently included in a software package that was later signed with the company’s digital certificate. The company believes the malware got off of HP’s internal network because it contained a mechanism designed to transfer a copy of the file back to its point of origin.

The means of infection here is the junkware shipped with all PCs, including HP's, according to HP 3000 consultant and open source expert Brian Edminster. In this case, the revoked certificate will cause support issues for administrators. The certificate was used to sign a huge swath of HP software, including crucial hardware and software drivers and components that are critical to Windows.

"This is one of the reasons that I absolutely loath all the 'junkware' that is commonly delivered along with new PCs," Edminster said. "I end up spending hours removing it all before I use a new PC." Recovery partitions on Windows systems will be at unknown risk after the certificate is pulled Oct. 21, too.

Continue reading "Signed malware stalks HP's Windows boxes" »


HP to break itself, dividing into 2 companies

Two public HP companiesCompanies of equal sizes will sell products branded HP. But the blue logo goes to the new HP Inc.

Hewlett-Packard announced this morning that it will divide itself into two publicly-traded corporations, a move that shareholders and stock analysts have been demanding and predicting for years. The division of the company will be along product lines. The business server operations will be contained in the new Hewlett-Packard Enterprise, while PC and printer businesses will comprise the new HP, Inc.

The vendor said in a press release that the restructuring will "define the next generation of technology infrastructure." The reorganization will also spin out the least profitable, but largest, segment of HP's business into its own unit. HP still ranks in the top five among PC makers and is one of the largest makers of printers in the world.

HP double logoMeg Whitman will be CEO and president of the Hewlett-Packard Enterprise company. Pat Russo will chair a new Hewlett-Packard Enterprise board of directors. Last month Hewlett-Packard -- the full corporation founded by Bill Hewlett and Dave Packard in 1939 -- had named Whitman as chairman of the board and CEO. By breaking up the company, Whitman will cede some control of its most competitive and popular product segments.

Dion Weisler will be the head of the new HP, Inc. as CEO and president. Whitman will chair the HP Inc. board of directors. HP said it will still meet its profit forecasts for the fiscal year that ends on Oct. 31. It also said that it "issues a fiscal 2015 non-GAAP diluted Earnings Per Share outlook of $3.83-$4.03." That is the sweetest way of forecasting a profit, using non-Generally Accepted Accounting Practices. But it's not clear if that's HP Inc. profits, or profits for Hewlett-Packard Enterprise. And the vendor said it would take all of fiscal 2015 to complete the transaction.

“The decision to separate into two market-leading companies underscores our commitment to the turnaround plan," said Whitman, who's led HP through three years of a five-year turnaround plan. "It will provide each new company with the independence, focus, financial resources, and flexibility they need to adapt quickly to market and customer dynamics, while generating long-term value for shareholders.

"In short, by transitioning now from one HP to two new companies, created out of our successful turnaround efforts, we will be in an even better position to compete in the market, support our customers and partners, and deliver maximum value to our shareholders."

Continue reading "HP to break itself, dividing into 2 companies" »


Steady pace means un-news isn't no news

By Ron Seybold

Editorial-IconWhat does it say about the HP 3000 when the steadiest story about the 3000 doesn’t involve an HP 3000? You can’t wear one, like an Apple Watch, or buy a brand-new HP 3000. Your server’s operating system is unchanged after more than four years, unless you’re buying a custom-crafted patch.  The mission for this general purpose machine hasn’t changed, either.

It might be that the most constant news about the HP 3000 of 2014 is there’s no fresh news. So what’s an editor to do when his blog and publication includes the word Newswire? To conjure content, I reach back, and I look ahead. What is ahead of us doesn’t involve much HP iron, and certainly nothing new wearing a Hewlett-Packard 3000 badge on its chest. I only have to reach back to see a story where wearing something to compute wasn’t a novel concept. Not according to my files here in the office. 

I work a lot out of the files these days.

Print-ExclusiveThis rambling is a way of describing my frustration and then a calm acceptance about the limited rate of change. I came into the journalism business with the knowledge that new was best. My first newspapering job came in a small Texas town with a competing paper just down the block. You’d wonder why a county seat of 3,500 would ever need two newspapers. It was 1982, a year when plenty of towns had two papers. Journalism has changed. Now there’s an infographic out there with the Then and Now of information. A reporter is now considered a blogger, and press conferences are now Twitter chats.

I came to tech journalism and got scooped within three weeks. Scoop, for any who’ve forgotten, is when a competitor learns and prints something before you can. One year at an Interex conference, we scooped all day at our booth. Ice cream, supplied by the hotel’s catering department. The word was synonymous with elite information.

There are press releases today, but they’re called content. Some still fill my inbox, but they come from non-3000 markets. The investment of an envelope and stamp is gone, just like an investment in HP-branded iron has been replaced by an offsite, up in the cloud server. Not free, but oh so less costly.

Continue reading "Steady pace means un-news isn't no news" »


Making History By Staying Together

ScotlandMontageWhat price and what value can we put on borders? While we put the latest 3000 Newswire print issue to bed last week, the United Kingdom’s region of Scotland was voting for its independence from Great Britain. One of our favorite 3000 resources and supporters, Alan Yeo, didn't know if he’d wake up at the end of last week using UK or GB as the acronym to define his country. If Scotland were to go, the Kingdom would no longer be United.

Cooler heads prevailed, and the No vote to block the push to secede squashed the Yes by a large margin. The country made history with the largest voter turnout every recorded. There's some good come of the competition, anyway.

The independence balloting called to mind what the Web has done with borders: erased them all, virtually. Some of the more draconian countries have fences up to keep their citizens’ thoughts and beliefs in, but even China with its Alibaba marketplace — where you can but a 747 or drone motors over the Web equivalent of eBay or Amazon — is erasing its borders. Scotland, inexplicably, wants to erect new ones.

Here in Austin, and through most of Texas, bumper stickers ride on trucks with the state’s outline the command, “Secede!” We are the United States of America, though. Pockets of rebellion boil up in places like the Texas border with Mexico, or up in Idaho. But there’s too much in common among government sentiment to break us up into pieces.

I know about the desire for borders. Our nitwit governor here was on TV last fall, here in Austin, describing our progressive town as “the blueberry in a sea of red.” Yes, we’re juicy, sweet, and different. But we’re Texans, too, much to the governor’s dismay. That TV show didn’t hit Jimmy Kimmel’s show from Dallas or Houston.

So it has gone for the Web and 3000 users. On pages over the years, both paper on on the Web, we cater to constituencies as diverse as possible. One set of readers is done with MPE, making plans to archive systems or scrap them. Another is devoted to their status quo, the devils they know rather than the devils they don’t know how much upset and cost they’ll trigger.

Continue reading "Making History By Staying Together" »


TBT: Early winter's taste visits Interex '94

Uhh-coverIt stunned nearly everybody, but the final day of the annual Interex user conference, 20 years ago this week, did not herald the start of Fall. That season might have filled pages on everybody's calendar, but the skies over Denver were filled with snowflakes on Sept. 21. Thousands of HP 3000 customers had to scurry through soggy streets in a month where leaves were supposed to be falling.

Everything happened at an Interex, eventually. Robelle's Neil Armstrong wrote about it in the What's Up Doc newsletter the vendor produced that year.

Welcome to Winterex 1994.

Once again the weather attempted to upstage various announcements and goings on at the Interex Conference. This year it snowed on the Wednesday afternoon of the Denver conference. The "snow" storm, however, was nothing compared to hurricane Andrew which hit New Orleans during Interex '92.

This year's conference was certainly a hit with a lot of the people I talked to. The last Interex I attended was in Boston in 1990, which became known as the Great Unbundling of TurboImage Debate. Interex '94 was a pleasant contrast with HP's new product announcements, the bundling of ARPA services and a general positive tone regarding the future of the HP 3000. The HP booth was a beehive of activity with Client-Server demonstrations and huge printers on display.

Armstrong went on to say that his favorite view at the show was seeing a camera connected to an HP 9000 workstation, one that delivered a live pictures of people passing by the box. "The fun part was moving from side to side quickly and watching the CPU graph go up," he added.

This was the year when the pushback started to ruffle the Unix juggernaut that had promised open systems for so long. Windows was still a year away from being desktop-useful. But that didn't keep the technical leadership from creating a Unix Hater's Handbook.

Continue reading "TBT: Early winter's taste visits Interex '94" »


One Course to Sail a 3000 Into the Cloud

People in IT have come to understand the meanings and potential for the term cloud computing. But plenty of them don't trust it, according to a recent survey. Not with many mission-critical apps, anyway. Since HP 3000 managers have always had a belt-plus-suspenders approach to datacenter management, we'll bet that a great percentage of them are among the doubters about cloud security.

Docker_(container_engine)_logoRemote instances of HP 3000s have been with the community as long as MPE could boot a server. But now, knowing which precise server will deliver an application isn't part of the cloud's design. Even as recently as this year, companies are getting by with 3000 computing by using a server located outside their site, sometimes even outside their state.

It's the state of cloud computing security that gives IT pros some pause. According to a study conducted this year by Unisys (remember their mainframes?) and IDG Research, more than 70 percent of 350 respondents feel security is the chief obstacle in cloud deployment. IT executives want to collect data about the security of data that's in the cloud.

The technology to put Linux instances into cloud computing is already available. And Linux is essential to installing the HPA version of CHARON from Stromasys. There's been no announcement of a cloud edition of the virtualization product. But Docker looks like tech that could help, according to our contributor and 3000 consultant Brian Edminster.

"Docker struck me as an easy mechanism to stand up Linux instances in the cloud -- any number of different clouds, actually," Edminster said. According to a Wiki article Edminster pointed at, Docker is based upon open source software, the sort of solution he's been tracking for MPE users for many years.

Continue reading "One Course to Sail a 3000 Into the Cloud" »


Remaining on Watch for HP Innovation

Apple WatchEarlier today Apple unveiled the descriptions and benefits of wearing a full functioning computer for the first time. Well, maybe not for the very first time. But for the first time in the modern era of computing, anyway. The Apple Watch defines the Tim Cook era at the company, and it will still need some tuning up through several generations. But this time around, the watch that breaks ground by riding on wrists won't need a stylus -- just an iPhone.

The instance of this is called the Apple Watch -- say goodbye to any new product lines being started with an "i" for now. A watch is not an enterprise computing tool, some will argue. But that was said about the iPhone, too -- a device that turned out to be a portable computer of breakthrough size. HP 3000 acolyte Wirt Atmar wrote a famous newsgroup post about the first iPhones, being like "beautiful cruise ships where the bathrooms don't work."

The Apple Watch, of course, won't be anywhere close to perfect on first release Early Next Year. People forget that the iPhone was a work in progress though most of its first year. That's a better track record than the HP 3000 had at first shipment, late in 1972. That system that's survived 40 years in a useful form -- 1974 marks the year when MPE and HP iron finally had an acceptible match -- got returned to HP in many instances.

Screen Shot 2014-09-09 at 4.55.43 PMThe elder members of our 3000 community will recall the HP-01, a wristwatch that wanted to be a calculator at the same time. Nobody had considered wearing a calculator, and nobody had asked for a wearable one, either. But HP felt compelled to innovate out of its calculator genius factory in Corvallis, Oregon, and so a short-lived product, designed to satisfy engineers, made its way into HP lore in 1977.


HP-01"All of the integrated circuits and three discrete components for the oscillator are combined in a hybrid circuit on a five-layer ceramic substrate," said the article in the HP Journal, the every other month paper publication where engineers read about innovations, and the more technical customer was steered to see how Hewlett-Packard could deploy superior design. The problem was that it was 1977, and the company was sailing too far afield from its customers' desires with the HP-01. 1977 was a year when HP had scrabbled to come up with a Series II of the HP3000, a device more important to anyone who wanted to leave IBM batch computing behind and get more interactive. People who bought calculators had no concept of mobile computing. Even a luggable computer was still six years away.

HP-01 closeupBut the HP-01 did accomplish one benefit for the HP customer, who even then was a consumer, of business products. It showed the company was ardent about the need to innovate. The HP Journal is long gone, and the heartbeat of the company feels like it runs through personal computers and miniaturization of internal parts that make more of a difference to manufacturing and product margins. Apple built an S1 processor that's "miniaturizing an entire computer system onto a single chip" to make the Apple Watch a reality, something like HP's five-layer hybrid circuit substrate of 1977.

Screen Shot 2014-09-09 at 5.35.45 PMApple's had its share of innovative flops, too -- but the most recent one was from 2001, the PowerMac G4 cube. A breakthrough like this S1 that Apple claims is an industry first. HP's innovations these days are not getting the kind of uptake that you'll see from the Watch next year. Nobody tells a story about computer promise like Apple, right down to calling parts of its team "horological experts," and saying it with a straight face. In contrast, HP's Moonshot and the like are important to very large customers, but the small business innovation has been limited to fan-cooling technology. Not sexy enough to earn its own video with a spacey soundtrack.

Why care? One reason might be that HP's working to convince the world, its customers, and its investors that innovation is still embedded in its DNA. It takes more than slapping the word "Invent" under the logo. Innovation is hailed by the markets, not the engineers who designed it. Everything is a consumer product by now, since we're consuming computing as if it were a wristwatch.

Continue reading "Remaining on Watch for HP Innovation" »


A Virtual Legacy from the Past to the Future

VMworld 2014VMworld 2014 wrapped up this week, with more than 25,000 IT pros and suppliers attending the San Francisco conference. Although the show was wrapped entirely around the VMware offerings -- and few other genuinely available products look to the future as much as the virtual machine vendor's -- there's also a legacy story to be told. As it turned out, that story was a message that virtualized 3000 vendor Stromays got to share.

West Coast sales manager Doug Smith, a 3000 veteran from the enterprise resource planning world, checked in on his way out of the Bay Area to report on the proximity between decades-old MPE/iX and just-days-old VMWare innovations like the enterprise cloud vCloud Air. VMware is offering the first month of vCloud Air free.

"VMWorld is a lot of people looking forward," he said, "and we're pulling people back, out of the past. It was great to see those little guys walking by and knowing what MPE, VMS and Alpha means. People were looking up and saying, 'Oh yeah, I've got one of those HP 3000s in my datacenter.' It was a sight to see."

The CHARON virtualization engine that turns an Intel server into a 3000 runs on the bare metal of an Intel i5 processor or faster, operating inside a Linux cradle. But plenty of customers who use CHARON host the software in a virtualized Linux environment -- one where VMware provides the hosting for Linux, which then carries CHARON and its power to transform Intel chips, bus and storage into PA-RISC boxes. VMware is commonplace among HP 3000 sites, so management is no extra work. But ample server horsepower is a recommended spec for using a VMware-CHARON combo.

Continue reading "A Virtual Legacy from the Past to the Future" »


30 years ago, 1984 seemed like news

I've been writing about my own experiences of the year 1984, since this has been the week that marks my 30th anniversary of my technical journalism career. It was the era of personal 1200 baud modems manufactured by US Robotics, now owned by PowerHouse's parent company Unicom Global. It was a time when HP's PC, the Touchscreen 150, operated using a variant of CPM -- the alternative to MS-DOS that lost like Betamax lost to VHS. It was a year when HP's worldwide software engineering manager Marc Hoff announced that 1,783 new products would enter HP's price list on April 1, products ranging from less-expensive software to "application-experienced CEs" called CSRs.

HP's new PICS phone support centers in California and Georgia each operated from 8 AM to 6 PM, giving the customers a whole 13 hours a day of call-in "toll-free" support in the US. It was an era when toll-free mattered, too, and to save money in your DP shop (we didn't call it IT) you could read a column on how to make your own RS-232 cables for the HP 3000, based on instructions from the Black Box Catalog. The HP 3000 could output graphics to magnetic tape, files that could be passed to a service bureau to create 35mm slides for your Kodak Carousel projector for those important boardroom meetings. But there are stories that 3000 community members have shared about that year, too. Here's a sample of some.

AnaheimProcCover

Alan Yeo, ScreenJet founder - In 1984 I had just gone freelance for a contract paying “Great Money” and spent the whole year on a Huge Transact Project. Actually it was the rescue of a Huge Transact Project, one that had taken two elapsed and probably 25 man-years and at that point was about 10 percent working. A couple of us were brought in on contract to turn it around. We did, and we used to joke that we were like a couple of Samurai Coders brought in to Slash and Burn all before us. (I think Richard Chamberlin may have just starred in the hit TV epic Samurai at that time.)

 We were working on a Series 70, configured as the biggest 3000 in our region of the UK (apart from the one at HP itself). We used to have lots of HP SEs in and out to visit -- not because it was broken but just to show it to other customers. That was the year we started hearing rumors of PA-RISC and the new “Spectrum” HP 3000s. It unfortunately took a few more years for them to hit the streets.

I have lots of good memories of HP SEs from that time. HP employed some of the best people, and a lot of them were a great mix between Hardware Engineers, Software Engineers and Application Engineers. Great people to work with who sort of espoused the HP Way, and really made you want to be associated with HP. Where did they go wrong?

Brian Edminster, Applied Technologies founder -- As you've said, bespoke software was the meat and potatoes of the early 3000 market. I still believe that a custom software application package can be warranted -- as long as it gives your business a competitive edge. The trick is to make sure the edge is large enough to justify the expense of having something that's not Commercial Off the Shelf.

Continue reading "30 years ago, 1984 seemed like news" »


What Changed Over 30 Years: Bespoke

Warmup suitsI arrived here in the community of my career when gas was $1.15 a gallon in the US, the Dow was at 1,200, a new truck sold for $8,995, the Cold War Olympics featured no Soviet atheletes in LA, and Stevie Wonder had a top hit on the record charts. Because there were still records being sold for pop hits, along with cassettes. Nary a CD could be bought. The Mac was brand new and still didn't sport a hard drive. Those fellows to the right were right in style with warm-up suits that you're likely to see in a senior's happy hour cafeteria line today.

There were thousands of applications in the Hewlett-Packard software catalog of 1984. It wasn't a new idea to collate and curate them, either. MB Foster had one of the first compendiums of HP 3000 software, several years before it occured to HP to offer products the vendor did not make (or buy up, then sell back). But in the month when I entered this market, during that August you were at least as likely to find custom, bespoke software running a corporation as any Commercial Off The Shelf package.

People built what they needed. The bespoken software was often created with the help of fourth generation langauges, so Speedware and Cognos' Powerhouse were big players during 1984. Not the biggest of the 3000 vendors, in terms of customer size. Unless you counted several thousand MANMAN sites, all running the Quiz reporting tools that ASK Computer included with the MRP package. Back in those says, Enterprise Resource Planning hadn't been conceived. 

Because so much of the community's software was customized, being well-versed in IMAGE/3000 -- not yet TurboIMAGE, let alone IMAGE/SQL -- was a key skill. Mastery of the database was more attainable if you had a database management utility. Adager was most widely installed, with Bradmark just getting off the ground in 1984. I nearly crashed my reputation with Adager and co-founder Alfredo Rego, less than a month after I began my career in the community.

MondaletoHartThe problem was a lack of MPE and IMAGE experience. Since I didn't understand the technology first-hand, I felt compelled to contribute to the effort of the HP Chronicle. Not by writing an article, but instead closely red-pen editing the writing of Rego. I didn't know yet that anything he shared with a publication -- his technical treatise was a big win for us at the HP Chronicle -- had already been polished and optimized. A writer well-steeped in mastery of his subject can insist an article be published with no changes. In the publishing business, stet means to ignore a change. I'd have been helped if someone had grabbed my inked-up printout of Rego's paper and marked "stet all changes" on the front. He had a legitimate beef.

Instead, we ran it and then I got to enjoy a rare thrill -- having my corrections corrected by the author, live in front of a local user group audience. Writers forming the troika of big independent vendors -- Bob Green at Robelle, Eugene Volokh at VEsoft, and Rego -- certainly had earned stet-all-changes. Their software became crucial in managing a 3000 that was gasping for new horsepower. Creating and maintaining customized software was a popular way to get the most out of the six-figure HP 3000s, already at the end of the line at the top but still more than two years away from getting a refresh.

Continue reading "What Changed Over 30 Years: Bespoke" »


This Is Where I Came In

It's the third week of August, but it's 30 years ago. I wear my wide tie and my oxfords to an office in Austin's northwest tech territory and start to write and learn about the HP 3000. I'm 27, father of a boy not yet two, a community news reporter with a new community to creep into -- because that's how it's done when you don't know anyone or much of anything. You ask a lot of questions and try to understand the answers.

Ronin1980sThe office is ribbed with wood paneling and mini-blinds and sports an IBM-PC knockoff, a Columbia. It's got an amber display and no hard drive. A box with the manual for Walker, Richer & Quinn's PC2622 software is on top of that monitor. It's connected for something called time-sharing, and it also connects to something called Compuserve. I watch my boss dial up on a phone with a modem -- I knew about those from using an Apple II at home -- and read the news. None of it's about HP, though. That's our story to tell.

Inside my editor's office there's a telephone transcription machine for recorded interviews, plus a Kaypro II portable. It weighs 28 pounds and has a screen that's nine inches across.  Kaypro_II_portable_computer_with_dBase_II_and_CPM_2013-04-04_00-57Imagine two Samsung Galaxy phones side by side, and that's about it. There are two books on the shelf, both printed by Hewlett-Packard. One is a catalog of third-party software and specialized hardware, all written in something called MPE V for a computer people are wild about, the HP 3000. The other book is a listing of the phone number of everyone in HP's Bay Area campuses. HP is not yet selling $7 billion of gear, support or software in 1984 -- and that includes medical and measurement systems that are so much better known than its computer products.

In my first week of a career writing about HP, one of the first things that I learn is that we've been scooped. The latest HP 3000, a real ground-breaker, is already in the pages of Interact magazine. The user group Interex has won again, because being physically near those HP Bay Area offices makes a difference. There's nobody on our staff or theirs who wrote news for newspapers, though, not until this week. It's the only chance we've got to learn something first: Get on that phone, son.

Continue reading "This Is Where I Came In" »


TBT: Affordable IT in Acquisition Aftermath

Blanket-AdThere it is, in all of its comfy, trustworthy glory: The only two-page spread advertisement HP ever bought to promote the HP 3000. From a 1998 issue of Computerworld, it's a ThrowBack Thursday entry, from an era when the 3000 was battling for prime position in datacenters. (Click it to have a closer look.) Harry Sterling was the general manager of the 3000 group by that year. Serious business.

Simpkins AdAs part of another ad series, Terry Simpkins, now the Business Systems Director of Measurement Specialties Inc., testified to the value of running HP 3000 ERP systems. At the time MANMAN was owned by Computer Associates, who'd dubbed the software's owner the MK Group. (Click to have a closer look at his testimony.)

Now comes word that Simpkins' current company -- probably one of the single largest users of MANMAN -- has been purchased. An acquisition can be a trigger for change. Some HP 3000s have been decommissioned as a result of running a company which now must march in a new corporate file. 

It may not be so at MSI. We've heard through the MANMAN support network that TE Connectivity Ltd., which will own MSI perhaps as early as next month, was impressed by the low costs of operating more than 10 separate ERP installations around the world. MSI was purchased for $1.4 billion, according to a report in the Wall Street Journal.

There have been some instances in the system's past where the HP 3000 edged out other mid-size enterprise platforms during a merger. AS/400s got replaced in one case. At MSI, the system is running manufacturing for a company that is moving into stronger business.

Continue reading "TBT: Affordable IT in Acquisition Aftermath" »


Password advice for migrating managers

PasswordsStolenMore than a billion password-ID combos were stolen by a Russian gang, according to a report from a cybersecurity company. Mission-critical, revenue-centric passwords are probably the ripest targets.

Once you're making a migration of mission-critical systems from MPE to more-exposed servers, passwords will become a more intense study for you. Windows-based servers are the most exposed targets, so a migrated manager needs to know how to create high-caliber passwords and protect them. Given the headlines in current news, today's probably the day when you'll get more questions about how safe your systems are -- especially in the coming era of cloud computing. Here's some answers from our security expert Steve Hardwick.

By Steve Hardwick, CISSP
Oxygen Finance

Everything needs a password to access it. One of the side effects of the cloud is the need to be able to separate information from the various users that access a centrally located service. In the case where I have data on my laptop or desktop, I can create one single password that controls access to all of the apps that reside on the drive, plus all of the associated data. There is a one to one physical relationship between the owner and the physical machine that hosts the information. This allows a simpler mechanism to validate the user. 

In the cloud world it is not as easy. There is no longer a physical relationship with the user. In fact, a user may be accessing several different physical locations when running applications or accessing information. This has lead to a dramatic increase in the number of passwords and authentication methods that are in use. 

I just did a count of my usernames and passwords and I have 37 different accounts (most with unique usernames and password). Plus, there are several sites where I use the same usernames and password combinations. You may ask why are some unique and why are some shared. The answer is based on the risk of a username or password be compromised. If I consider an account to have a high value, high degree of loss/impact if hacked, then it gets a unique username or password. Let's look at email accounts as a good example.

Continue reading "Password advice for migrating managers" »


Stromasys spreads word of spreading wings

Hardware We ReplaceThe makers of the only HP 3000 hardware emulator are not a new company, but Stromasys is starting to outline the new structure of its firm in a communication to its clients and partners. Last week the corporation emailed notice of a set of managers to "strengthen its management team" and a announce the creation of a new R&D center.

In May the company's main HQ was moved to a larger facility in Geneva, and an Asia-Pacific unit will be located in Hong Kong. Some of the changes to the company were reported in brief at the end of 2013. But Chairman George Koukis, who started the banking software Temenous Group and leads that sector of software systems, speaks out in the update about the intrinsic value of CHARON. 

"Charon prolongs the life of software by protecting it from constant change in hardware technology," he said. "Temenos' worldwide success meant that I replaced many systems; I am painfully aware of the immense cost of replacing or migrating application software."

Worldwide expansion through a partner network looks to be a key mission objective of the latest communique. When the company was briefing North American customers for the first time in May 2013 on a Training Day, the managers said that a channel structure for partners was being designed. Frédéric Kokocinski is the new Global Head of Channel Management. The new channel strategy focuses on marketing and communication -- including a comprehensive product roadmap -- certification for resellers, plus support through knowledge sharing, as well as a fresh push on sales.

The company has offices in place in Raleigh, NC, Switzerland, and Hong Kong. Gregory Reut is Head of Support. The company is meeting with partners to outline and detail the changes in its organization. Isabelle Jourdain is Head of Marketing. The company's co-founder, Robert Boers, remains connected to the company as a technology advisor to the board of directors. 


Update: Open source, in 3000 ERP style

OpenBravo roadmapAn extensive product roadmap is part of the OpenBravo directions for this open source ERP commercial solution

Five years ago today, we chronicled the prospects of open source software for HP 3000s. We mentioned the most extensive open source repository for MPE systems, curated by Brian Edminster and his company Applied Technologies. MPE-OpenSource.org has weathered these five years of change in the MPE market and still serves open source needs. But in 2009 we also were hopeful about the arrival of OpenBravo as a migration solution for 3000 users who were looking for an ERP replacement of MANMAN, for example -- without investing in the balky request-and-wait enhancement tangle of proprietary software.

Open source software is a good fit for the HP 3000 community member, according to several sources. Complete app suites have emerged and rewritten the rules for software ownership. An expert consulting and support firm for ERP solutions is proving that a full-featured ERP app suite, Openbravo, will work for 3000 customers by 2010.

[Editor's note: "We meant work for 3000 customers" in the sense of being a suitable ERP replacement for MPE-based software]. 

A software collective launched in the 1990s by the University of Navarra which has evolved to Openbravo, S.L., Openbravo is utilized by manufacturing firms around the world. Openbravo is big stuff. So large that it is one of the ten largest projects on the SourceForge.net open source repository, until Openbravo outgrew SourceForge. The software, its partners and users have their own Forge running today. In 2009, Sue Kiezel of Entsgo -- part of the Support Group's ERP consulting and tech support operations -- said, “We believe that within six to nine months, the solution will be as robust as MANMAN was at its best.”

From the looks of its deep Wiki, and a quick look into the labs where development is still emerging for advanced aspects such as analytics, Entsgo's premonition has come to fruition. Managing manufacturing is easily within the pay-grade of open source solutions like OpenBravo.

Continue reading "Update: Open source, in 3000 ERP style" »


Mansion meet takes first comeback steps

A few hours ago, the first PowerHouse user group meeting and formation of a Customer Advisory Board wrapped up in California. Russ Guzzo, the guiding light for PowerHouse's comeback, told us a few weeks ago that today's meeting was just the first of several that new owner UNICOM Global was going to host. "We'll be taking this on the road," he said, just as the vendor was starting to call users to its meeting space at the PickFair mansion in Hollywood.

We've heard that the meeting was webcast, too. It's a good idea to extend the reach of the message as Unicom extends the future of the PowerHouse development toolset.

CoeThis is a product that started its life in the late 1970s. But so did Unix, so just because a technology was born more than 35 years ago doesn't limit its lifespan. One user, IT Director Robert Coe at HPB Management Ltd. in Cambridge, wants to see PowerHouse take a spot at the table alongside serious business languages. Coe understands that going forward might mean leaving some compatibility behind. That's a step Hewlett-Packard couldn't ever take with MPE and the HP 3000. Some say that decision hampered the agility of the 3000's technical and business future at HP. Unix, and later Linux, could become anything, unfettered by compatibility.

Coe, commenting on the LinkedIn Cognos Powerhouse group, said his company has been looking at a migration away from Powerhouse -- until now.

I would like to see Powerhouse developed into a modern mainstream language, suitable for development of any business system or website. If this is at the expense of backwards compatibility, so be it. We are developing new systems all the time, and at the moment are faced with having to use Java, c# or similar. I would much rather be developing new systems in a Powerhouse based new language, with all the benefits that provides, even if it is not directly compatible with our existing systems. 

The world would be a better place if Powerhouse was the main platform used for development! I hope Unicom can provide the backing, wisdom and conviction to enable this to happen.

Continue reading "Mansion meet takes first comeback steps" »


3000 sages threwback stories on Thursday

DirtydicksTwo weeks ago in the modest London pub Dirty Dick's, a few dozen veterans and sages of the 3000 system had their personal version of a Throwback Thursday. This is the day of the week when Facebook and Twitter users put out a piece of their personal history, usually in the form of a picture from days long past.

BruceTobackIf pressed for a piece of June Throwback Thursday material, I might reach for our very first blog post. Nine years ago this month we kicked off our coverage of new, every-workday reporting. My first story was a tribute to a just-fallen comrade in the 3000 community. Bruce Toback died in that month the Newswire's blog was born. As I said in that first blog article -- "A Bright Light Winks Out" was already a throwback, before the term gained its current coin -- Toback was extraordinary, the kind of person that makes the 3000 community unique. He lived with a firm grip on life's handrail of humor. He died unexpectedly of a heart attack at age 48. As part of a gentle and generous Toback memorial, David Greer hosts pictures of Bruce like the one above. Many of these were taken as Toback became important to the Robelle Qedit for Windows project.

Bobgreen-beachThe passing of a special life is a good reason to celebrate what remains for all of us. That's probably what motivated those London veterans to gather at Dirty Dick's Pub this month to toss off stories and toss back drinks. Bob Green of Robelle (pictured here in a throwback picture in the spring of 2001, when he was working from his Anguilla island headquarters) shared some pub photos and a brief report about this month's Throwback Thursday for your community.

BrianDuncombe“It was great to catch up with 3000 colleagues from around the world: Steve Cooper, Dave Wiseman, Brian Duncombe, Kim Leeper, Brad Tashenberg, the Nutsfords and many more (about 20 in all). We exchanged notes on the current state of the machine -- especially the new emulator -- and discovered what each of us was doing. [Editor's Note: Duncombe (above) had made this trip in a record 48-hour-complete turnaround, from Canada to the UK and back. The intensity still burns bright for some of your community members.]

Steve Cooper Kim LeeperGreen noted, while posting photos of Cooper and Leeper in conversation, or the sweet couples' photo (below) of Jeanette and Ken Nutsford, "An amazing number of people are still doing the same thing: helping customers with their IT concerns. But in reality, most of the time was spent swapping war stories from the past, which was great fun.

Nutfords"Here are some photos from the party. Everyone is older, but perhaps you will remember some of them." This photo of the Nutsfords, ever the COBOL and HP Rapid standards-bearers, is something of a coup. The couple retired from the world of the 3000 to set off an epic career of cruise line travels, so catching them for a picture requires some foresight. They are circling the globe in a lifestyle that shows there's another, more rewarding kind of migration awaiting the luckiest of us.


Going Virtual, or Getting More Live

Duncan ChampionWe were not there live last night -- but we remember what the Finals felt like, that seed that made the virtual rich enough.

Virtual is the new efficient. Going virtual in computing means doing away with what's not essential. But what it really means is re-thinking how to do something that's been done the same since before anybody can recall. MPE is going virtual this year, and every year for the rest of this decade that it can shed its Hewlett-Packard hardware, much of it built in the previous century.

There are good reasons for going virtual, as well as good reasons for going what -- actual? Live, there, that's the word for it, in-person and physical. Yesterday I got a Father's Day treat at the movie theatre. We don't go there often anymore, but when we do, we want to be in an IMAX Mini theatre, wearing 3D glasses. Otherwise, there's always streaming at home to experience stories.

Why even bother to leave your chair? In a world where information and experience can feel as real as being present, those are good questions to consider while investing. Last night an NBA championship game was being played just 90 minutes from my house. But while it was sorely tempting, I absorbed the experience from my purple leather sofa in front of a modest flat-screen TV. I wasn't in the arena with my San Antonio Spurs. I had a virtual experience. But as its greybearded leader Tim Duncan looked like a youngster in winning once again, late in the game which is his career, I felt like I’d been there -- because I remember when Abby and I were there, cheering for a title 11 years ago.

Scientists tell us that this sort of memory is what makes virtual experiences most powerful. We imprint on the emotion and richness of a live event, remembering the race of the heart and the sweat on our brow. Or maybe the feeling of being known and understood, in a meeting of IT pros or inside a conference hall. This emulated intimacy becomes palatable when you know the real thing. It makes it possible to become a powerful tool in a world we’re experiencing at a broadband pace. We can also control the mix of the event’s information and our own comforts.

At my house we had the network broadcasting its video on the TV, and we didn't time-delay with our DVR like we do during the regular season games. The pictures were live. At the same time, we live close enough to San Antonio to get a clear feed of the Spurs' flagship radio station WOAI -- where our comforting announcer Bill Shoenig called the action. I simply could not recreate this kind of multimedia inside the arena. Because I had dread as well as elation to juggle for three hours, the whole melange was more tasty when I could see what I want -- enhanced with replay ---while I could hear what I craved: that upbeat voice, making an outlook on a story Whose outcome we could not predict.

Virtual was better. An emulation can improve on the original.

We crave this kind of experience in our work, too. There’s a bit of an unexpected miracle going on in Hollywood this month. A legendary mansion will be the site of a PowerHouse user conference and advisory board meeting. It’s not the right time to attend, for some managers who use that development suite. So at least one of those pros has asked if the whole conference couldn’t be webcast. HP did this earlier this month at its Discover conference. 

COMMON VirtualCOMMON, the user group for the IBM enterprise server manager, has been trying to emulate a trade show for awhile. It's all well within the realm of reality, tech-wise. But a conference presentation is one kind of thing to splash over the Web. The interaction between users is far tougher to duplicate. HP tried this show concept, years ago, attempting to mount a virtual conference, complete with expo area. It’s a concept that’s still ahead of its time. Visiting the COMMON virtual conference above even shows a few animated people outside an expo hall, well-rendered. But without anything to share with you. There's no live-world reference with these people to recall.

Continue reading "Going Virtual, or Getting More Live" »


User group's mansion meet sets deadline

JoinUsPowerHouse


June 15 is the first "secure your spot" registration date

PowerHouse customers, many of whom are still using their HP 3000 servers like those at Boeing, have been invited to the PickFair mansion in Hollywood for the first PowerHouse user conference. The all-day Friday meeting is June 27, but a deadline to ensure a reserved space passes at the end of June 15.

That's a Sunday, and Father's Day at that, so the PowerHouse patriarchy is likely to be understanding about getting a reservation in on June 16. Russ Guzzo, the marketing and PR powerhouse at new owners Unicom Global, said the company's been delighted at the response from customers who've been called and gathered into the community.

"I think it makes a statement that we're in it for the long haul," Guzzo said of gathering the customers, "and that the product's no longer sitting on the shelf and collecting dust. Let's talk." 

We're taking on a responsibility, because we know there are some very large companies out there that have built their existence around this technology. It's an absolute pleasure to be calling on the PowerHouse customers. Even the inactive ones. Why? Because they love the technology, and I've heard, "Geez, I got a phone call?"

Register at unicomglobal.com/PowerHouseCAB -- that's shorthand for Customer Advisory Board. It's a $500 ticket, or multiple registrations at $395 each, with breakfast and lunch included. More details, including a handsome flyer for justifying a one-day trip, at the event's webpage.


Virtualization still demands real iron

In the span of time between the publication of a hopeful magazine article and the close of this year's HP Discover conference, the vendor made a point about its hardware heritage. The point might have been unintentional, but it appears that the future is still a destination you'll achieve riding the vehicle of The Machine.

BrontobyteHPA lot of computing is going out of sight these days. The costs to careers are real, as companies decide that managing IT staff and in-house resources is a discretionery budget item. When they job out your computing systems to a cloud provider, all that remains is to keep up with the needs of your applications and business processes. That's a lot fewer jobs across our industry. The demands for information keep accelerating, through brontobytes of data and onward.

But HP believes that there's still going to be a need for a machine to run it all, one that they're trying to build from the concepts of tomorrow. A blog post on the HP website HP Next explained why the biggest HP Labs project in 20 years is being called The Machine.

Why do we call it The Machine? When we first started developing it, we wanted to be very careful not to call it a server, workstation, PC, device or phone, because it actually encompasses all of those things. So as we were waiting for Marketing to come up with a cool code name for the project, we started calling it The Machine—and the name stuck.

HP talks about a centralized learning engine. So that's another physical reference, one that will be powered by The Machine. "With The Machine, we have the opportunity to rethink security, data governance, data placement and data sovereignty from ground up and embed them into all of our products. This revolutionary project is on its way to changing the industry—and the way we compute."

The promise, really just a dream, is that a "a doctor could compare your symptoms and genomics with every other patient around the world to improve your health outcomes, instantly, without language barriers or privacy breaches."

That magic will still require real iron somewhere, managed by an IT pro. Iron, a box, or a virtual array of compute engines, they'll all an un-changing part of the way our industry computes. That's why the revolution of a virtual HP 3000 server still needs a ProLiant computer to emulate the old PA-RISC MPE system. That's why even at HP, tomorrow's data dream is called The Machine.


Heirs to the 3000 Family's Fortune

It was about this time nine years ago that the Newswire's blog began, and one of our first few items in that season was a personal one. Squirreled away in an email update we once called the Online Extra, we noted a happy event in the Volokh family. Eugene -- now a tenured law professor, had become a father once more -- making his dad Vladimir a grandfather again.

Now the family has another milestone. Vladimir reports that younger son Sasha, also a law professor, has earned tenure at Emory University in Atlanta. Two tenured law professors as sons, and each of them had their HP 3000 experience, chronicled in publications.

SashaDCSasha was first depicted in the DC Daily, a daily newsletter that Interex published during the 1985 DC user conference, in a pictorial called Kids at the Konference. "While mom and dad are attending the round tables, the kids are enjoying the conference in their own special way." This show, almost 30 years ago, was my first exposure to the Interex yearly meetings. I have a firm memory of the young Sasha making his way happily from vendor booth to vendor booth, wearing a vest that was festooned with the giveaway buttons from the vast array of 3000 vendors.

SashaEmoryLike his brother, Sasha was just shy of age 12 during his debut in the wide HP 3000 community. His parents Vladimir and Anne shared the photo above of a 12-year-old Sasha -- now tenured. It's a marker that your community has enough tenure that it's produced father-son heritages. And yet another generation has been born to these heirs. There are others to note, too.

In addition to the Volokhs, we've written up -- during a week that like this one is nearing Father's Day -- the combo of Terry and David Floyd. During the past year, David has moved into the ranks of an established manufacturing system manager, after his stint of leading the Support Group. He too had early first steps onto the path of his father, writing an application that he finished at age 15. David's first HP 3000 experience was at age 5, in 1981, on a Series III.

Continue reading "Heirs to the 3000 Family's Fortune" »


A Long Time in Passing

TimpassingIt's very late spring here at my house, and that means our basketball ardor is at its zenith. This year my beloved San Antonio Spurs are already playing in the championship round. The NBA calls this The Finals. But for the last seven years, there's been nothing final about the Spurs' work to win a title. Each year the organization, as they like to call the coaches, managers and players that comprise the team, seems to make a serious Drive for Five after four previous championships. Their last championship was in 2007 -- or in the middle of HP's first "wait a minute" two-year extension of its 3000 business.

Over the past three years, though, analysts in the sports community have tried to write off the Spurs as too old to compete at the highest level. Tim Duncan, Spurs superstar and Hall of Famer in waiting, is about as old as a Series II HP 3000. Unlike that CISC model of server, Tim's gotten better with age, more crafty with the minutes he plays in what's clearly the last act of his career. The former monster scorer has become a passer.

By his side on the court, two other stars play, to make up the Spurs' Big Three. Everybody's got a Big Three now in basketball, from the Celtics to the Miami Heat. The Spurs were the first. Their other stars are as old as a Series III (Manu Ginobilli) and Tony Parker, a younger man, but as old as a Series 68.

One of my first assignments in journalism was as sports editor. I covered five prep school districts and wrote a lot of stories about boys and girls who were 13-18 years old. There was plenty of drama and heroics. What I learned back then was that age didn't matter, if you had the right coach and you were focused enough to learn how your skills could shape each game. Del Coryover was a star at 15 in Leander, carrying the football for a couple of touchdowns a night. Nobody told him he was not the right age to fly past bigger defenders.

So it seems, sometimes, for HP 3000 installations begun in the 1980s. Like those Spurs stars, these servers and the pros who manage them just keep coming back for more work. On the ABC network, they've taken to calling the Big Three and their legendary coach Gregg Popovich "The Same 'Ol Spurs," with affection by now. Their continued championship relevance, over a stretch of time that goes back to before there were A-Class and N-Class servers, has earned them respect. They are not flashy. Nobody pounds their chest and screams to the rafters after a monster dunk, or a back-door cut, or dropped-bomb three-pointer, or the blocked shot -- although they perform all of these nightly.

 

Last night they played badly, under brutal conditions. The AC failed in their homecourt at the ATT Center, and in that 90-degree indoor swelter they failed to pass crisply. Miami stole the basketball like bloodhounds after loose pork chops. But the Spurs play their bench men often, and in crunch time, too. It's a full-team approach, instead of superstars like cloud servers and Oracle databases. They survived on reliability last night, counting on the fact that fresh players make better plays. What makes the 3000 great is what makes the Spurs great: consistency, the clockwork-like execution that happens from hundreds of hours of practice, all laid down upon a bedrock of team-first strategy. They practice passing "from good shot to great shot."

As one example of delicious good to great dependability, consider something called the outlet pass in basketball. You probably never heard of it because it's fundamental. Tim has been re-coached by Coach Pop, as he's called, to use stunning talent to make these offense-sparking plays perfect and extraordinary. At their best, they can be the long-bomb touchdowns of basketball. For the basketball geek, the YouTube video embedded here gives you a taste of these Duncan veggies, whizzing the ball down-court to make the sizzle happen at the other end.

How is it possible that the outlet pass -- or a bank shot, one of Tim's mainstay plays -- still works wonders in the modern NBA? He does these things as a trademark that's earned him an un-flashy nickname: The Big Fundamental. When sports analysts are agog at the success of a bank shot -- first performed in the 1950s -- I think of the consultant who observed companies using the equivalent of the bank shot, PowerHouse.

"I am amazed to know that Powerhouse is still running on any platform," Bob Kaminski said, after Unicom bought the product and worked to revive it. As a young employee with the vendor he said, "I started with Quiz, Quick and QTP in 1983-84. Sold it, until I left Cognos in 1989. It was great then, and I assume is still a great tool."

But this passing year means more for the Spurs, and perhaps more for the 3000, than many others before. This season is one of redemption for the team, having seen that Fifth title slip away last year with 28 seconds left to play. It was a gut-punch few other teams could recover from, losing like that. The team responded by leading the league in wins during the next regular season, and now returning to The Finals to gain their revenge -- as well as their respect. Tim Duncan is in the twilight of his career, just like HP's hardware that runs MPE/iX is running out of time.

Continue reading "A Long Time in Passing" »


A World Where Amazon Trumps Big Blue

It almost sounds like grandpa-talk to say "things have changed so much." Life is built from changes, and since our industry runs at a pace faster than almost every other, our rate of change is exemplary. There are long-held rules that are giving way, too.

TrumpCardMost of the HP 3000 managers remember the saying that "nobody ever got fired for buying IBM." It was an unfair advantage. Big Blue was the default IT choice for most of the 3000's lifespan as an HP product. But during the decade-plus since MPE started to vanish from Hewlett-Packard's mindscape, IT hosting and computing resource defaults have been reset. The changes are serious enough that Amazon trumped IBM on a $600 million project to build a compute center for the CIA.

Unlike the NSA (No Such Agency), the CIA exists and processes countless pieces of information. A story in BusinessWeek reported that the CIA wanted to build its own private cloud computing system. This is the type of IT project that would've been handled on the ground, not in the cloud, while HP was selling 3000s. A type of project IBM would've been a finalist in. Indeed, IBM finished in the top two. But IT pros now live in a world where buying compute power with a credit card is a valid strategy. The stakes were high for the winner. 

For the bidders, more was at stake than a piece of the lucrative federal IT market. Whoever won the 10-year, $600 million contract could boast that its technology met the highest standards, with the tightest security, at the most competitive prices, at a time when customers of all kinds were beginning to spend more on data and analytics.

The CIA awarded the contract to Amazon.com. The e-commerce company had persuaded the spymasters that its public cloud could be replicated within the CIA’s walls. Amazon had been bleeding IBM for years—its rent-a-server-with-your-credit-card model was a direct threat to IBM’s IT outsourcing business—but this was different. Amazon beat IBM for a plum contract on something like its home turf, and it hadn’t done so simply by undercutting IBM on price. IBM learned that its bid was more than a third cheaper than Amazon’s and officially protested the CIA decision.

The 3000 community lives in a world where cloud computing is being selected for large-scale projects -- and it's being chosen from companies like Amazon who don't have the ballast to carry you'll see from HP, IBM, Dell or others. The servers, and the expertise to make them sparkle, work elsewhere. HP's got a cloud offering, as does IBM. But Amazon Web Services is way ahead of these classic server providers. IBM's gotten so far off the server sales strategy that it sold its low-end servers group to Lenovo.

To put it another way, IBM's selling as many small servers this year as HP is selling 3000s.

In the BusinessWeek story, the demise of IBM being fireproof got exploded. At least while going up against Amazon.

A federal judge agreed, ruling in October that with the “overall inferiority of its proposal,” IBM “lacked any chance of winning” the contract. The corporate cliché of the 1970s and ’80s, that no one ever got fired for buying IBM, had never seemed less true. IBM withdrew its challenge.


Looking Up, from a Vision to a Spectrum

While I'm researching for another Newswire story, I've found an archive of reporting from the year that HP was taking its first full turn onto the path of RISC computing. RISC is the architecture that grew from the MPE XL version of the 3000 and its 900 Series systems, until finally HP evolved it into the Integrity lineup -- the only host that will ever run HP's Unix replacement OS. Back in 1985, it really looks like the company's CEO didn't know any more about 3000 designs than any other CEO at HP has since that time.

Young Misunderstands RISC Oct 85John Young was HP CEO, interviewed in the week while the Interex user group was hosting its Interex Washington DC conference. But the CEO wasn't at the conference. The company's founder was there, but David Packard wasn't the subject of the Computerworld interview. Young was asked what was prompting HP to pursue RISC as a computing strategy. He spent some time conflating and mixing several HP servers' technology. In the most baffling part of his answer, he said this about how muddled HP's computer architecture was -- and how RISC was going to change that.

We had desktops with one architecture, factory floor terminals with another and the HP 3000 with yet another stack architecure. The 9000 series terminals emulated the 3000 architecture in some ways, but not really completely.

Young went on to add that HP spent 90 percent of its development time changing things to make its networking perform correctly. "And those changes propagated down the whole computer line. I just decided, when I became HP president [in 1978]... that we wanted to find some way of bringing a harmony out of this unique business opportuntity. We needed to make a jump, and the conjunction of all those things was a program we Spectrum."

9000 series terminals? He probably meant the HP 9000 desktop systems, built for engineering. The 3000 architecture was Complex Instruction Set Computing (CISC), but so was the 9000's. Just a different design, called FOCUS. The factory floor terminals might have been attached to HP 1000s. One of the engineers on the scene at the time, Stan Sieler, told us he figures emulated in Young-speak might have been more philosophical than technological. Sieler also said that the sparkplug of RISC at HP was eager to get the Vision project out of the way, so Joel Birnbaum could enjoy his spectrum.

Continue reading "Looking Up, from a Vision to a Spectrum" »


Unicom calls PowerHouse users to mansion

Many things are on the table for change in the PowerHouse community, now that Unicom Global owns the software suite and contracts with customers. One of the more notable adjustments in the new order is a June 27 users conference, a single day's meeting to be held on the grounds of a Hollywood landmark.

From 8:30 to 3 that day at "the Legendary PickFair Estate in Beverly Hills," customers and developers using PowerHouse can attend a user conference. At the same time, the vendor's CEO is hand-picking from executive community members who want to serve on the first PowerHouse Customer Advisory Board. The vendor is calling customers over the phone, in addition to email notices and postings on LinkedIn and other web locations. For some customers, the Unicom calls will be the first PowerHouse outreach they've heard in many years.

PickFairThe meeting represents the launch of a PowerHouse user group, one of the first, if not a groundbreaker. I scanned through 20 years of HP 3000 reporting, and plumbed back another 10 while on watch at the HP Chronicle and as an independent editor, and couldn't recall a PowerHouse user group before now. The dim memory of a few Special Interest Group spin-offs from Interex comes to mind. We'd be glad to know if there's any PowerHouse history we overlooked.

The way this group differs from those other user group SIGs is that it's being founded by its vendor. In the days of Interex user groups -- from the early '70s through the end of the 20th Century -- that kind of leadership was considered too intrusive. But times have changed for user groups. They often need the support and attention only a vendor can deliver to a product's customers. HP and Encompass share the reins at HP Discover, the Hewlett-Packard enterprise user conference. Discover takes place June 10-12 at the Venetian Resort on the Las Vegas Strip. HP picks up the greatest share of the expenses at that meeting.

The PowerHouse meeting, a little more than two weeks later, calls users to a  mansion -- the former home of Hollywood icons Mary Pickford and Douglas Fairbanks. PickFair is part of the Unicom portfolio, another piece of the evidence that PowerHouse is in for a journey across new grounds.

Continue reading "Unicom calls PowerHouse users to mansion" »


TTerm Pro's latest version uses NS/VT

TTermProNSVT

As we reported yesterday, the TTerm Pro app for HP 3000 emulation got an enhancement this month, one that makes the software very unique. NS/VT protocol support isn't exactly rocket science, but its not straightforward, either. The history of the 3000 is strewn with terminal emulator makers who didn't get this aspect all figured out.

Our ally Jon Diercks, who's the author of The MPE/iX System Administrator Handbook, updated his iPad app and gave the new 1.1.0 version a test. The short report: NS/VT seems to work, at first glance. Diercks added a second test to the first one of the app. He connected his iPad to the HPA202 freeware version of CHARON. With his exam, an HP 3000 terminal emulator was talking with an emulated HP 3000. He offered the screen shot above as proof.

Well, the 30-second report is ... it works! I fired up Charon, copied my previous TTerm telnet profile and changed to NS/VT, and the logon prompt came right up. The :SHOWVAR command above proves that NS/VT protocol is in use. I also launched NMMGR just to verify block mode still looks okay. I might play with it more later, but that's enough to satisfy my curiosity for now.

It's a marvel to consider how MPE has been carried into the future with this combination. The iOS operating system on the iPad is certain to have a longer life where it's improved than the alternatives based on desktops. By that, I mean I believe iOS has "got legs," as the saying goes among theatre people when they talk about a long-running show. You don't need a PC and Windows any more to emulate a 3000 terminal.

And with CHARON, you don't need the 3000 hardware anymore, either. All that's left is MPE and IMAGE, the bedrock of what we know as the 3000 experience.


iPad 3000 terminal emulator gains NS/VT

The only tablet-ready terminal emulator for HP 3000 users has crossed over even further into the language of MPE. The 1.1.0 version of TTerm Pro adds HP's 3000-specific Network Services/Virtual Terminal protocol. The new feature means that many more MPE applications will run without a flaw over the Apple iPad tablets.

TTerm Pro portrait view TelnetTo be exact, the latest version of TTerm Pro will run under iOS7, so it's possible that some other Apple mobile product could link up this app with a 3000. But a tablet is pretty much the minimum screen real estate for a terminal emulator. Jon Diercks, who tested the previous version of TTerm Pro, said in his review that an external keyboard connected via Bluetooth eased the use of tablet-based terminal emulation. But the screen capture at left -- collected back when TTerm Pro only did Telnet links -- shows you can even get a soft keyboard, plus function keys, onto an iPad's screen.

Turbosoft, which released a 3000-ready version of the iPad app last year, has lowered the price of TTerm Pro by 50 percent. It now sells for $24.95. Any 3000 managers who purchased the app last year can update it -- with its new 3000-savvy -- for free. NS/VT could be worth a lot more for any company that wants to preserve a 3000 application's capability to go mobile.

Continue reading "iPad 3000 terminal emulator gains NS/VT" »


Emulator's edition earns closer look in call

First of two parts

The recent CAMUS user group meeting, conducted as a conference call, promised some testing and analysis of the Stromasys CHARON HP 3000 emulator -- as done by an outsider. MB Foster is an insider to the HP 3000 community, but the vendor doesn't have an affiliation with Stromasys as a partner. Not at this point, although there are always opportunities for longstanding vendors to join their customers with such a new solution.

CEO Birket Foster said the company's been asked by its customers if MB Foster products would run safely in the CHARON environment. The question not only has been of high interest to 3000 managers. One similar answer lies in the Digital environment, where CHARON has more than 4,000 installations including some CAMUS members who run MANMAN in a VAX system. All's well over there, they report.

CHARON is so much newer in 3000-land. Principal Consultant Arnie Kwong of MB Foster outlined some of the research results from testing on an Intel i7 server with 64GB of memory and SSD storage, as well as a more everyday 8GB capacity box, albeit an AMD-based system. (Both systems can run CHARON for the 3000 emulation.) Wong said using a private VMware cloud, or private backup machines, are common computing-share practices that deserve extra attention with new possibilities of CHARON. "What will it let me do that's different?" he asked.

One of the assumptions of using cloud infrastructure and these new capabilities is whether the fundamental operating characteristics, business processes and business rules embedded in applications like MANMAN are sufficient for what you're doing now. Having talked to lots of MANMAN customers, all of the industry-standard and regulatory practices can be impacted if we do something major like shifting the platform.

Kwong went on to forecast the use of CHARON in a cloud-based implementation and ponder if that use affects regulatory compliance, as well as "the ability to operate on a global basis, and what new opportunities we can do in that mold." He said he'd confine his comments to instances where a cloud-based infrastructure was already in use at MB Foster customer sites. "But our leading candidate to do this kind of thing isn't a VMware kind of architecture." CHARON, Kwong noted, relies heavily on VMware to do its emulation for HP 3000 operations.

Continue reading "Emulator's edition earns closer look in call" »


Making the best of an attack

The industry-wide provider for hosting TypePad is up, then down, then up again in the battle being waged with hacker Denial of Service attacks. It's the everyday host of the Newswire's blog, so you'll have some trouble getting onto it to read us. It's been five days, and everybody is getting frustrated. This sort of an outage would be getting a 3000 pro's IT recommendations reviewed. Not even deadly storms have knocked out many a 3000 this long.

This is the genesis of good experience, however. It's giving us a good reason to build out an important new branch of the 3000 Newswire's services. Story for Business, which as of this week is a simple Tumblr blog, is giving our readers stories about MPE-related news.

If you go far enough back, you'll recall an era of our history where we hosted our website from an HP 3000 Series 928. We worked with HP's MPE implementation of Apache/iX, until the lags and differences -- imagine an FTP server which didn't include all protocols -- pushed us onto Linux machines. Those machines at 3k Associates continue to perform.

So we're using the formula this week suggested by MPE veteran Vladimir Volokh. Clearly, this is a bad experience that our sponsors and readers are weathering. Vladimir says, "We get asked, 'how do you come up with so much good experience for us?' Because, good experience comes from bad experiences."


A week-plus of bleeds, but MPE's hearty

BleedingheartThere are not many aspects of MPE that seem to best the offerings from open source environments. For anyone who's been tracking the OpenSSL hacker-door Heartbleed, though, the news is good on 3000 vulnerability. It's better than more modern platforms, in part because it's more mature. If you're moving away from mature and into migrating to open source computing, then listen up.

Open source savant Brian Edminster of Applied Technologies told us why MPE is in better shape.

I know that it's been covered other places, but don't know if it's been explicitly stated anywhere in MPE-Land: The Heartbleed issue is due to the 'heartbeat' feature, which was added to OpenSSL after any known builds for MPE/iX.

That's a short way of saying: So far, all the versions of OpenSSL for MPE/iX are too old to be affected by the Heartbleed vulnerability. Seems that sometimes, it can be good to not be on the bleeding edge.

However, the 3000 IT manager -- a person who usually has a couple of decades of computing experience -- may be in charge of the more-vulnerable web servers. Linux is used a lot for this kind of thing. Jeff Kell, whose on-the-Web servers deliver news of 3000s via the 3000-L mailing list, outlined repairs needed and advice from his 30-plus years of networking -- in MPE and all other environments.

Continue reading "A week-plus of bleeds, but MPE's hearty" »


Not too late to register for RUG meet

The CAMUS manufacturing app user group has a meeting tomorrow (April 16), starting at 10:30 Central time. An email to organizer and CAMUS RUG officer Terri Lanza will get you a dial-in number for the event. Birket Foster of MB Foster, one of the community's longest-tenured migration and sustainability vendors, will brief attendees on his perspective of the CHARON HPA, the HP 3000 hardware emulator.

CAMUS also has a Talk Soup as part of its dial-in agenda that runs through noontime. They only host their call twice a year, and it's a worthwhile endeavor to check in with others who are running HP 3000s in production mode.

Contact Lanza for your dial-in at [email protected]


Heartbleed reminds us all of MPE/iX's age

The most wide-open hole in website security, Heartbleed, might have bypassed the web security tools of the HP 3000. Hewlett-Packard released WebWise/iX in the early 2000's. The software included SSL security that was up to date, back in that year. But Gavin Scott of the MPE and Linux K-12 app vendor QSS reminds us that the "security through antiquity" protection of MPE/iX is a blessing that's not in a disguise.

OldheartWebWise was just too late to the web game already being dominated by Windows at the time -- and even more so, by Linux. However, the software that's in near total obscurity doesn't use the breached OpenSSL 1.0.1 or 1.0.2 beta versions. Nevertheless, older software running a 3000 -- or even an emulated 3000 using CHARON -- presents its own challenges, once you start following the emergency repairs of Heartbleed, Scott says.

It does point out the risks of using a system like MPE/iX, whose software is mostly frozen in time and not receiving security fixes, as a front-line Internet (or even internal) server. Much better to front-end your 3000 information with a more current tier of web servers and the like. And that's actually what most people do anyway, I think.

Indeed, hardly any 3000s are used for external web services. And with the ready availability of low-cost Linux hosts, any intranets at 3000 sites are likely to be handled by that open-sourced OS. The list of compromised Linux distros is long, according to James Byrne of Harte & Lynne, who announced the news of Heartbleed first to the 3000 newsgroup. 

Continue reading "Heartbleed reminds us all of MPE/iX's age" »


How SSL's bug is causing security to bleed

HeartbleedComputing's Secure Sockets Layer (SSL) forms part of the bedrock of information security. Companies have built products around SSL, vendors have wired its protocols into operating systems, vendors have applied its encryption to data transport services. Banks, credit card providers, even governments rely on its security. In the oldest days of browser use, SSL displayed that little lock in the bottom corner that assured you a site was secure -- so type away on those passwords, IDs, and sensitive data.

In a matter of days, all of the security legacy from the past two years has virtually evaporated. OpenSSL, the most current generation of SSL, has developed a large wound, big enough to let anyone read secured data who can incorporate a hack of the Heartbeat portion of the standard. A Finnish security firm has dubbed the exposed hack Heartbleed.

OpenSSL has made a slow and as-yet incomplete journey to the HP 3000's MPE/iX. Only an ardent handful of users have made efforts to bring the full package to the 3000's environment. In most cases, when OpenSSL has been needed for a solution involving a 3000, Linux servers supply the required security. Oops. Now Linux implementations of OpenSSL have been exposed. Linux is driving about half of the world's websites, by some tallies, since the Linux version of Apache is often in control.

One of the 3000 community's better-known voices about mixing Linux with MPE posted a note in the 3000 newsgroup over the past 48 hours to alert Linux-using managers. James Byrne of Harte & Lyne Ltd. explained the scope of a security breach that will require a massive tourniquet. To preface his report, the Transport Layer Security (TLS) and SSL in the TCP/IP stack encrypt data of network connections. They have even done this for MPE/iX, but in older, safe versions. Byrne summed up the current threat.

There is an exploit in the wild that permits anyone with TLS network access to any system running the affected version of OpenSSL to systematically read every byte in memory. Among other nastiness, this means that the private keys used for Public Key Infrastructure on those systems are exposed and compromised, as they must be loaded into memory in order to perform their function.

It's something of a groundbreaker, this hack. These exploits are not logged, so there will be no evidence of compromises. It’s possible to trick almost any system running any version of OpenSSL released over the past two years into revealing chunks of data sitting in its system memory.

Continue reading "How SSL's bug is causing security to bleed" »


Learning to Love Your Legacy

As the next end of days bears down on us -- Windows XP will become a former Microsoft product next Tuesday -- it's worthwhile to remember that the life beyond a vendor's designs can still fulfill. XP will operate in millions of places from next week and onward, but it's going to be a legacy system to many IT planners. That puts it in a similar spot with MPE, as well as IBM's legacy, the Series i systems.

JenFisherYes, they all have differences in their legacy standings. MPE's hardware -- well, the stuff badged with HP on it -- is beyond a decade old. There's nothing new there. Microsoft's hardware is everywhere, but the security essentials are taking a mortal wound starting next week. As for the IBM legacy options, we turned to Fresche Legacy's Jennifer Fisher. The company helped build up the 3000 and MPE worlds as Speedware, before it rebranded itself and expanded its focus to IBM.

Fisher, the VP of Global Sales and Marketing, said that love and IT can and do go together, something the company has experienced while serving both the 3000 and Series i worlds. "When we say 'IT can make you smile' and 'love your legacy,' this is want it's all about," she said. "You need to nurture and care for the legacy. Leverage it, and make it work for you."

Continue reading "Learning to Love Your Legacy" »


Newest paper-based issue signals Spring

By Ron Seybold

It might feel a bit absurd to think that hand-written forms, some even photocopied, would be essential vehicles of crucial monetary reports. PDF has become old-school, it’s so mainstream now. After all, several current and former Newswire sponsors sell software to eliminate paper. 

“Good luck with that,” my friend says of eliminating the need to extract. We meet for our coffee in the evenings now, while drinking decaf, because his alarm rings at 5:30 every workday and a good night’s sleep makes for an accurate workday. He's breaking open envelopes with springtime government forms, and more lately paper checks and money orders, enclosed. It's a temporary job with lasting benefits.

He tells me, with a look that I envy, that his wife is rousing herself into those wee hours to make his breakfast, pack his lunch. It’s like the Cleavers, June and Ward, I told him. “Yeah, and just like my dad,” he replies, talking about his pop eating eggs in the Sixties before sunup, to make a 7AM shift start. He says those eggs were cooked by his mom, who was just as much on the clock as his dad.

I remember such mornings only dimly, from my own days when I served that government in the US Army. You got used to a workday beginning before sunrise. Coffee of high-test variety was essential. And boy, was that Army of the 1970s ever run on paper. Three part forms and carbon and typewriters, not to mention my job — radio teletype operator, relaying troop strength and mobile armor readiness reports. All printed out on rough newsprint-grade paper in three-inch-thick rolls. Delivered across equipment that was already more than a decade old, and balky on our lucky days.

But those Army days of mine, like my pal’s temporary workdays, have one thing in common. It’s the rare job, he says, “where when you’re not there, you don’t have to care.” The work is important, of course. This agency pumps the lifeblood of revenue into the US. But for a season that’s well-known this time of year, it’s powered by piecework. Like a dance, he tells me, and I furrow my brow because I don’t get it. “We can raise up our desks to stand, and I rock back and forth while I move that mail.” I can just see him in his thick-soled shoes, flexing calves while he funnels all that paper through the mill, a throwback to shift work. There’s even a company cafeteria, he says, and a nurse’s station for paper cuts and sometimes worse.

The careful reader of ours will note that we’re now shifting to calling our paper issues Spring, and so forth. We have printed four per year, like the seasons, ever since 2006. Things do change, like climate or the habits of readers. If it were up to me, there would be a respected place for paper in my life for the rest of it. If I’m lucky, that’ll extend beyond the 3000’s CALENDAR wall of 2028. I’ll only be 71 by then. Just a boy, compared to the sage age of Fred White (beyond 85 now) or Vladimir Volokh (just celebrating number 75 this spring, he tells me.)

While my friend talks of everlasting paper, I think fondly of our newsletter, that name we gave to this Newswire product when we created it back in 1995. It was a time when online usually meant rolling off a PC terminal or a 3000’s 792 hardware. There was no Web when we planned this, but we certainly had to embrace it quickly. We got advice on making a website, but the blog was built out of our own observations. It helped that I’d been telling 3000 stories for a couple of decades before the blog went online.

Continue reading "Newest paper-based issue signals Spring" »


New MPE 8.0 includes cutting-edge remotes

Almost 10 years after the last update to MPE/iX -- the PowerPatch 2 of release 7.5 -- a new version of the operating system is emerging. What's being called MPE/iX 8.0 by the World OS ID board has begun to surface from the rogue collective of open source coders known as ReBoot.me, which has a website based in Macedonia.

HummingbirdIt's not known as this point how ReBoot.me got its hands on MPE/iX source code, but the modifications to the OS appeared to be demonstrated on an HP L-Class server. The new version was captured in a video released for a few hours on YouTube, but removed from North American, Asian, African, European and all Middle Eastern YouTube users. This 8.0 MPE/iX can still be viewed in a demo from viewers in the Bahamas, or any location that employs the domain .bs.

The secrecy appears to stem from some first-ever features on any operating system. Much like the groundbreaking memory space allocation of MPE/XL, the 8.0 release -- ReBoot.me calls it New MPE -- supports cloud hang time, self-repairing line breaks, and the manipulation of drone clusters. Seynor Blachboxe, the code-named spokesperson for the open sourcers, said the drone support was a late addition, one that helped fund the entire project.

Continue reading "New MPE 8.0 includes cutting-edge remotes" »


On the Inclusive Nature of Modern Paper

By Ron Seybold

Editorial-Icon-185.epsA friend of mine recently took up working a temporary job. It’s that kind of economy in places, even in Texas of 2014, and this job is the third that he’s working at once. But it’s his only full-time job, and this one gets him into a commute before daybreak. For years, we met early Wednesday mornings for breakfast tacos, but now it’s coffee in the evenings for us. My friend is working for a certain government agency that every one of us Americans has a relationship with, one that he doesn’t want me to mention by name. All he wants me to say here, with a wink, is “This is their busiest season.” And here in Austin, the agency has temp jobs available for a few months. 

Every minute of those temp jobs is based on the durable value of paper.

Of all documents that wage earners, retirees and businesses must transmit here in the American springtime, one out of every four are sent via paper. The government would rather not see this continue to be true. But some people are still true to their paper. We’ve been true to paper here at the Newswire, too — now for 150 printed issues.

There are other ways to communicate and learn about what we all do, what we spend and how we budget, the stories that we tell in reports to an agency or to each other about our earnings, our revenues, and our estimates for the future. But in the end, the most fundamental trust — as well as the means to include everybody in telling these stories — relies on paper.

And oh my, even well into the 21st Century, does my friend ever have stories about his early mornings with paper.

He talks of cardboard letter trays and plastic mail tubs, bins and crates and metal racks, all jammed with envelopes. A workday, he says, lived among the sizes that I’ve come to know in my own career of paper: the No. 10 envelope, the 9x12, by now the Tyvek, and even greeting card envelopes. All opened while using talc-lined latex gloves. He talks of staplers rated to punch together 80 pages at a time, the motorized and manual letter openers, plus hand-wielded staple pullers to rearrange the forms just so. My pal rattles off their four-digit numbers like they were MPE commands, instructions he has memorized like some newbie 3000 operator — back in the days when there were such things as operators.

He says the forms stream in around the clock, like what sounds to me like so many HP 3000 jobs, scanned with the oldest of school-skills, eyeballed by dozens of temps in a room that sounds bigger than any datacenter a 3000 ever occupied. He tells me that when he walks into that room with its hung ceiling tiles, the floors thump while he crosses them. Sounds like classic datacenter design to me, with raised flooring and ceilings for cables. 

But then he says this governmental room has less than a dozen keyboards across more than 150 desks. It’s manual work, and he adds with a grin, “The greatest part of it is that anything that people did in the 1970s with records is still being done today, by us.”

That must sound familiar to a 3000 developer, veteran, vendor or manager reading this. See, they all know that paper’s got backward compatibility as well as security that no nouveau computer system can ever match. Where do all those forms go? Well, keyed into acres and acres of hard drives, their data tapped in once they’re extracted from envelopes. But the forms themselves live in warehouses. “For heaven knows how long,” says my breakfast pal.

“Heaven knows how long” could be words to swear by in our 3000 world. People attempt to estimate when they can migrate, and then begin. The process can take a matter of months or the better part of a decade. But the equivalent of those paper documents, the redoubtable 3000, churns onward just like those 1-in-every-4 government forms that fill my pal’s paper mornings.


MPE's dates stay at home on their range

2028 is considered the afterlife for MPE/iX, and MPE in general, based on misunderstanding of the CALENDAR intrinsic. The operating system was created in 1971 and its builders at the time used 16 bits, very state of the art design. Vladimir Volokh of VESOFT called to remind us that the choice of the number of bits for date representation probably seemed more than generous to a '71 programmer.

"What could anyone want with a computer from today, more than 50 years from now?" he imagined the designers saying in a meeting. "Everything will only last five years anyway." The same kind of choices led everybody in the computer industry to represent the year in applications with only two digits. And so the entire industry worked to overcome that limitation before Y2K appeared on calendars.

YogiberraThis is the same kind of thinking that added eight games to the Major League Baseball schedule more than 50 years ago. Now these games can be played on snowy baseball fields, because March 29th weather can be nothing like the weather of, say, April 8 in northern ballparks.

Testing the MPE/iX system (whether on HP's iron, or an emulator like CHARON) will be a quick failure if you simply SETCLOCK to January 1, 2028. MPE replies, "OUT OF RANGE" and won't set your 3000 into that afterlife. However, you can still experience and experiment with the afterlife by coming just to the brink of 2028. Vladimir says you can SETCLOCK to 11:59 PM on December 31, 2027, then just watch the system roll into that afterlife.

It goes on living, and MPE doesn't say that it's out of range, out of dates, or anything else. It rolls itself back to 1900, the base-year those '71 designers chose for the system's calendar. And while 1900 isn't an accurate date to use in 2028, 1900 has something in common with Y2K -- the last year that computers and their users pushed through a date barrier.

Continue reading "MPE's dates stay at home on their range" »


Twice as many anti-virals: not double safety

Editor's note: While 3000 managers look over the need to update XP Windows systems in their company, anti-virus protection is a part of the cost to consider. In fact, extra anti-virus help might post a possible stop-gap solution to the end of Microsoft's XP support in less than two weeks. A lack of new security patches is past of the new XP experience. Migrating away from MPE-based hosting involves a lot more reliance on Windows, after all. Here's our security expert Steve Hardwick's lesson on why more than one A/V utility at a time can be twice as bad as a single good one.

By Steve Hardwick, CISSP
Oxygen Finance

If one is good, then two is better. Except with anti-virus software.

When it comes to A/V software there are some common misconceptions about capabilities. Recently some vendors, such as Adobe, have started bundling anti-virus components as free downloads with their updates. Some managers believe if you have one anti-virus utility, a second can only make things safer. Once we look how anti-virus software operates, you'll see why this is not the case. In fact, loading a second A/V tool can actually do more damage than good.

PolarbeardukeoutThe function of an anti-virus utility is to detect and isolate files or programs that contain viruses. There are two fundamental ways in which the A/V utility does this. The anti-virus program will have a data file that contains signatures for known viruses. First, any files that are saved on the hard drive are scanned for signatures to see if they contain malicious code. This is very similar to programs that search for fingerprints. Once the A/V utility finds a match, the file is identified as potentially dangerous and quarantined to prevent any infection. Second, the anti-virus utility will intercept requests to access a file and scan it before it is run. This requires that the anti-virus program can inspect the utility prior to it being launched.

Anti-virus designers are aware that their utility is one of the primary targets of a hacker. After all, if the hacker can bypass the A/V system then it is open to attack, commonly referred to as owned or pwned. So a core component of the A/V system is to constantly monitor its own performance to make sure it has not been compromised. If the A/V system detects that it is not functioning correctly, it will react as if there is a hacking attack and try to combat it. 

So here's what happens if two anti-virus programs are loaded on the same machine. Initially, there are issues as the second system is installed. When the second utility is loaded it contains its own database of known virus signatures. The first anti-virus will see that signature file as something highly dangerous. After all, it will look like it contains a whole mass of virus files. It will immediately stop it from being used and quarantine it. Now the fun starts -- fun that can drive a system into a ditch.

Continue reading "Twice as many anti-virals: not double safety" »


Listen, COBOL is not dead yet, or even Latin

MicrophoneIt's been a good long while since we did a podcast, but I heard one from an economy reporting team that inspired today's return of our Newswire Podcasts. The often-excellent NPR Planet Money looked into why it takes so long to get money transferred from one bank to another. It's on the order of 3 days or more, which makes little sense in a world where you can get diapers overnighted to your doorstep by Amazon.

Some investigation from Planet Money's reporters yielded a bottleneck in transactions like these transfers through the Automated Clearinghouse systems in the US. And nearly all automated payments. As you might guess, the Clearinghouse is made of secret servers whose systems were first developed in the 1970s. Yeah, the 3000's birth era, and the reporting devolved into typical, mistaken simplication of the facts of tech. Once COBOL got compared to a languge nobody speaks anymore, and then called one that nobody knows, I knew I was on to a teachable moment. Kind of like keeping the discussion about finance and computing on course, really. Then there's a podcast comment from a vendor familiar to the credit union computer owner, a market where the 3000 once held sway.

Micro Focus is the company raising the "still alive" flag highest for COBOL. 

But while every business has its language preferences, there is no denying that COBOL continues to play a vital role for enterprise business applications. COBOL still runs over 70 percent of the world’s business -- and more transactions are still processed daily by COBOL than there are Google searches made.

You might be surprised to hear how essential COBOL is to a vast swath of the US economy. As surprised as the broad-brush summary you'll hear from Planet Money of how suitable this language is for such work. To be sure, Planet Money does a great job nearly every time out, explaining how economics affects our lives, and it does that with a lively and entertaining style. They just don't know IT, and didn't ask deep enough this time.

Have a listen to our eight minutes of podcast. You can even dial up the original Planet Money show for complete context -- there are some other great ones on their site, like their "We created a t-shirt" series.  Then let me know what your COBOL experience seems to be worth, whether you'd like an assignment to improve a crucial part of the US economy, and the last time you had a talk with anybody about COBOL in a mission-critical service.


Cross-pond experts to meet in UK

TransatlanticLast month, Dave Wiseman organized the first SIG-BAR meeting in more than a decade in London. The turnout at what was an HP 3000 social and networking event was encouraging enough to put another meeting on the calendar. This one is going to have some HP 3000 experts on hand from across the pond, as we like to say about Transatlantic travels.

The next SIGBAR event is June 12, to be held at the same Dirty Dick's tavern and meeting room as the December 5 gathering. This time around, Brian Duncombe of Triolet Systems and Steve Cooper of Allegro are making the journey to be on hand. It's a long way from Canada, in Duncombe's case, or California for Cooper to re-connect with 3000 contacts. But yours is a world that was always founded in community.

And frankly, being in London in June is a brighter prospect than a December day. Literally. While traveling to London more than a decade ago in winter, the sun sets about 4 PM. To contrast, it comes up before 5 in the same month when Wimbeldon kicks off.

Duncombe, for the 3000 user who doesn't know him, created some high-caliber database shadowing and performance measurement software for MPE during the 1980s and into the '90s. He's planning a journey round-trip from Toronto that will literally span about 48 hours on the Canadian clock. That's how much he's engaged with the community and old friends. "I sleep well on planes," Duncombe said.

Continue reading "Cross-pond experts to meet in UK" »


The Volokhs Find the Amazon Finds Them

AmazonmapIn 1980, a 12-year-old boy and his father began to create a beautiful expansion of MPE for 3000 customers. These men are named Volokh, and that surname has become the brand of a blog that's now a part of The Washington Post. The journey that began as a fledgling software company serving a nascent computer community is a fun and inspiring tale. That 12-year-old, now 45, is Eugene Volokh, and along with this brother Sasha the two created the Volokh Conspiracy. Volokh.com became a blog in 2002 -- something of a breakthough in itself, according to the Internet's timeline. Now the new owner of the Post, Jeff Bezos, has replaced a long-standing blog from Ezra Klein with the Volokhs' blend of legal reporting, cultural commentary, and English exactitude.

Bezos, for the few who don't know him, founded and owns the majority of Amazon, the world's largest online retailer. And so, in one of the first Conspiracy posts out on the Post, the article's headline reads

In Brazil, you can always find the Amazon — in America, the Amazon finds you

This is a reference to the Russian roots of the Volokhs, according to founding father Vladimir. He recalled the history of living in a Communist country, one that was driven by a Party relentless in its dogma and control. With the usual dark humor of people under oppression, he reported that "In Russia the saying is, 'Here, you don't find the party -- the party finds you.' "

AmazonAmazon has found the Volokhs and their brand of intense analysis -- peppered with wry humor, at times -- because it was shedding Ezra Klein's Wonkblog. Left-leaning with a single-course setting, this content which the Volokhs have replaced might have seen its day passing, once Klein was asking the Post for $10 million to start his own web publishing venture. There may have been other signs a rift was growing; one recent Wonkblog headline read, "Retail in the age of Amazon: Scenes from an industry running scared."

This is not the kind of report that will get you closer to a $10 million investment from the owner of Amazon. That running scared story emerged from this month's meeting of the National Retail Federation, a place where 3000 capabilities have been discussed over the years.

Continue reading "The Volokhs Find the Amazon Finds Them" »